Client Credentials Grant
Machine-to-machine (M2M) authentication for server-side applications (RFC 6749 §4.4). The client authenticates using its own credentials (not user credentials) to access resources it owns or has been granted permission to access. No user interaction required.
Client Credentials Grant
Machine-to-machine (M2M) authentication for server-side applications (RFC 6749 §4.4). The client authenticates using its own credentials (not user credentials) to access resources it owns or has been granted permission to access. No user interaction required.
Machine-to-Machine
Sequence Diagram
Click any step for details
Request
Response
Redirect
Internal
Step-by-Step Breakdown
1
Token Request
Client → Authorization Server
2
Access Token Response
Authorization Server → Client
3
API Request
Client → Resource Server
Token Inspector
Specs for this flow
Sections of the protocol that normatively define this flow, plus the security considerations that apply to it.